02-16-2010 06:14 AM - edited 02-21-2020 04:30 PM
Hi All.
I am trying to terminate 2 different VRF aware IPSec tunnels between the same pair of public IP peering points.
This is in IOS (on Cisco 2811s).
Each tunnel will have a different VRF & different PSK, but everything else will be the same.
Is this possible?
Thanks,
Jon.
02-16-2010 06:43 AM
Hi,
What kind of configuration are you trying to accomplish?
Each vrf will have static routes or would you run an IGP?
Federico.
02-16-2010 06:48 AM
Hello.
Normally we run OSPF, and then redistribute into MP-BGP at the PE.
But I can run static routing.
Does this have an impact?
Cheers,
Jon.
02-16-2010 09:53 AM
No impact, just asking because in plain IPsec tunnels you can't run dynamic routing protocols.
Have you tested yet the scenario?
Federico.
02-17-2010 08:41 AM
Hey.
Well, these are IPSec tunnels dropped into a VRF (1 vrf per tunnel) so we can do whatever routing we like....
I haven't tested it yet, was just being lazy to see if I could get away without testing! ;-)
Will test 2mor on good old Dynagen and post the results.
Cheers.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: